What is your security setup these days?

Discussion in 'other anti-malware software' started by dja2k, Dec 15, 2005.

  1. justenough

    justenough Registered Member

    Joined:
    May 13, 2010
    Posts:
    1,549
    Back to Sandboxie and Emsisoft Anti-Malware.
     
  2. dja2k

    dja2k Registered Member

    Joined:
    Feb 15, 2005
    Posts:
    2,120
    Location:
    South Texas, USA
    Feb. 13, 2015 - Updated, Added, Removed

    Network
    • Two Netgear Nighthawk R7000-100PAS Routers (Stock Firmware)
    • Four Netgear PowerLine AV 500 Adapters
    • Wired Cat5e Connection between both Routers
    • WPA2-PSK AES Encryption
    • SPI & NAT Firewalls Enabled
    • OpenDNS Configuration
    Computers
    • Desktop - Windows 8.1 Pro with Media Center x64
    • Laptop - Windows 8.1 x64
    Built-In Security
    • USER ACCOUNT CONTROL: HIGHEST SETTING
    • EMET 5.1: MAXIMUM SECURITY SETTINGS
    • WINDOWS SMART SCREEN: ENABLED
    • WINDOWS DEFENDER: DISABLED
    • WINDOWS FIREWALL: DISABLED
    Resident
    • Emsisoft Internet Security 9.0.0.4925 (Paid)
    • Appguard 4.1.45.1(Paid)** - Locked Down
    • NVT ERP 3.1.0.0 Build1-19012015 Beta (Paid)** - Lockdown Mode
    • Sandboxie 4.15.12 Beta (Paid) - Sandboxie Container Folder on RAMDisk
    • Adguard 5.10.1190.6188 (Paid)
    • DNSCrypt 0.0.6 - HTTPS Enabled
    On-Demand
    • PeerBlock 1.2 (P2P Blocking List)
    • Shadow Defender 1.4.0.578** (Paid)
    • Macrium Reflect 5.3 build 7256*
    • VMWare Workstation 11.0.0 Build 2305329** (Paid)
    Browser, Immunization, Tweaks
    • Chrome 40.0.2214.111 x64 (HTTPS-Everywhere, Gmelius) - Chrome Profile Folder on RAMDisk and Sandboxed
    • Homepage and Search Providers set to Startpage (Chrome and IE)
    • LastPass 3.1.50 Premium (Chrome and IE)
    • Spyware Blaster 5.0 (All Protection Enabled + Customblocking.txt)
    • CryptoPrevent 7.4.11
    *Macrium Reflect (Full Daily Backup -Desktop, Full Weekly Backups - Laptop)
    **VMware Workstation, Appguard and NVT ERP only installed on Desktop[/s] \ Shadow Defender only installed on Laptop


    dja2k
     
  3. zakazak

    zakazak Registered Member

    Joined:
    Sep 20, 2010
    Posts:
    529
    I am not sure if I already asked you but: Why not dnscrypt32 instead of the OpenDNS-Dnscrypt client? It seems more lightweight, more features & options ?
     
  4. Solarlynx

    Solarlynx Registered Member

    Joined:
    Jun 25, 2011
    Posts:
    2,015
    Windows 7 Ultimate 64-bit, 4GB RAM, Corei5
    Online Armor free
    360TS "Security" mode
    Zemana Antilogger lic
    MBAE experimental

    The setup feels a bit heavy.
     
  5. LoneWolf

    LoneWolf Registered Member

    Joined:
    Jan 2, 2006
    Posts:
    3,782
    For now on XP Home it's back to....
    DefenseWall
    ShadowDefender
    Macrium Reflect
     
  6. tuvalu_tt

    tuvalu_tt Registered Member

    Joined:
    Apr 28, 2013
    Posts:
    56
    Location:
    Finland
    Never say never...
    Flash 0-day holes are scary, so i did install MBAE back, Firefox freeze issue has happened ones or twice after that.*
    1 time i know for sure, maybe it's more, i use that win 8.1 so rarely, it's my mothers computer and i use it only when i visit there.
    MBAE has been only few days installed back, so lets see...
    but i wanna install HMP.Alert on that computer too, i love that program, i wanna share it, i have 3pc 2y license and others. (from: black friday deals.)
    but i wait when it's released, and not RC.

    * without MBAE freeze issue has not happen, according to her. and i have not seen it freeze.
    but 0-day holes are scary, so it's back at least temporarily.
     
    Last edited: Feb 14, 2015
  7. Rasheed187

    Rasheed187 Registered Member

    Joined:
    Jul 10, 2004
    Posts:
    17,546
    Location:
    The Netherlands
    OS: Windows 8.1 (64 bit)

    Real-time:

    EXE Radar Pro | Sandboxie Pro | Windows Firewall Control 4

    On demand:

    Process Explorer | VirusTotal Uploader | GMER | Malwarebytes Anti-Malware Free
    -------------------------------------------

    I had to remove HitmanPro.Alert 3 because of compatibility problems with Sandboxie. I also removed SpyShelter Firewall but I feel naked without HIPS, so I'm thinking of putting it back, even though some things annoy the hell out of me. But I still prefer it over Online Armor, Zemana and Comodo.
     
  8. Moose World

    Moose World Registered Member

    Joined:
    Dec 19, 2013
    Posts:
    905
    Location:
    U.S. Citizen
    Salutations,

    Hitman Pro Alert just had update last night. Also, on malwaretips this morning!
    Additionally, Sandboxie had an update to there current beta version a couple of
    days ago.
    What kind of problems? Where Hitman Pro Alert causes and are sure it was Sandboxie?
    The reason,that I am asking because I am using Hitman Pro Alert and Sandboxie together?

    I found EXE Radar Pro was the problem!

    Kind regards,

    Moose's World
     
  9. Solarlynx

    Solarlynx Registered Member

    Joined:
    Jun 25, 2011
    Posts:
    2,015
    Hello!

    Windows 7 Ultimate 64-bit, 4GB RAM, Corei5
    Comodo IS: FW: Custom; AutoSandbox: unknown FV; HIPS: Safe; AV: Stateful.
    MBAE 1016 trial with additional shields for Sidebar.exe, Palemoon, and some other office and internet apps.
    Google Chrome with "HTTPS Everywhere" and "Adblock Plus".

    The setup is light though I don't like the AV component.

    Cheers!
     
  10. ako

    ako Registered Member

    Joined:
    Nov 16, 2006
    Posts:
    667
    Free setup for my friends and relatives. Here robustness and simplicity are as important as efficiency of protection:
    • Panda free
    • Windows firewall
    • LUA
    My personal setup:
    • LUA+TweakUAC
    • Sandboxie $
    • Windows firewall
    • Avira free
    • MBAM $
    • Winpatrol Plus $
    Scanners:
    • HitmanPro
    Backup:
    • Syncback
    • Paragon
    Other security-related programs I use:
    • Secunia PSI
    • Virustotal Uploade
     
    Last edited: Feb 15, 2015
  11. Rasheed187

    Rasheed187 Registered Member

    Joined:
    Jul 10, 2004
    Posts:
    17,546
    Location:
    The Netherlands
    I doubt ERP is the problem, it does not seem to block anything related to SBIE and HMPA. SBIE is giving me error messages, seems like HMPA is interfering with it.
     
  12. Moose World

    Moose World Registered Member

    Joined:
    Dec 19, 2013
    Posts:
    905
    Location:
    U.S. Citizen
    Thanks for the feedback. I will take another look!

    Appreciate the information!
     
  13. Securon

    Securon Registered Member

    Joined:
    Jan 11, 2009
    Posts:
    1,960
    Location:
    London On
    Good Morning! Trend Micro +...HMP...AppGuard. Terrrible Trio! Lol! Sincerely...Securon
     
  14. dja2k

    dja2k Registered Member

    Joined:
    Feb 15, 2005
    Posts:
    2,120
    Location:
    South Texas, USA
    You had asked already and I had previously replied I was having an issue with it at that time. I am now on a refreshed Windows Installation and I installed the latest DNSCrypt Proxy Files 1.4.3 and its working without issue.

    dja2k
     
  15. Paranoya

    Paranoya Registered Member

    Joined:
    Nov 4, 2013
    Posts:
    59
    • Software Restriction Policy (incl libraries/DLLs, all users incl admin)
    • Sandboxie (with strict restrictions for Internet- and Resource Access)
    • Windows Firewall with outbound changed to block
    • EMET
    • All addons disabled in Firefox (only enabled when needed and always "inside" Sandboxie so a browser restart has them aut. disabled again)
    Don't think I need any more than that besides AV, but I suspect the number of unique setups here are almost as high as the number of posts in this thread so I don't expect anyone to actually agree ;)
     
  16. Minor mitigation tweak

    Replaced Office 2007 with Libre Office and Windows Live Mail 2012. Disabled all scripting and added those scripting dll's to SRP.

    WL Mail runs as restricted (which is slighly safer as Outlook's Internet-zone). With the Coverity Scan analysis the bad programming practices in Lbre Office code base should be replaced now. This reduces the chance of exploiting weak code (e.g. lacking error handling or easy to overwrite return addresses). So with these changes the mitigation measures increased a little for the better.

    Still thinking it is early days, but thanks to the positive post of @Mrkvonic I will find out how well the increased compatibility works (I first have to leave M$ Office before being able to move to Linux eventually). Saving in Office format (with high compatibility on) and keeping Office 2007 installed but inactivated (SRP deny and FW rule disabled).
     
    Last edited by a moderator: Feb 20, 2015
  17. zakazak

    zakazak Registered Member

    Joined:
    Sep 20, 2010
    Posts:
    529
    Which dnscrypt provider did you choose ?
     
  18. dja2k

    dja2k Registered Member

    Joined:
    Feb 15, 2005
    Posts:
    2,120
    Location:
    South Texas, USA
    I kept using the same setup as before from https://dnscrypt.eu/

    dja2k
     
  19. zakazak

    zakazak Registered Member

    Joined:
    Sep 20, 2010
    Posts:
    529
    Yep same here, are you using it with Windows DNSCrypt Service Manager? The problem I have encountered on Windwos 8.1:

    When switching WIFI then you have to create DNS settings for each WIFI. The DNS-Setting 127.0.0.1 is not "hardware" based as the "hardware (network adapter) changes with each WIFI-Network. What I did to make sure my dns settings wouldn't change when changing WIFI:

    I made a FW rule to allow DNS request only via dnscrypt.nl IP.
     
  20. dja2k

    dja2k Registered Member

    Joined:
    Feb 15, 2005
    Posts:
    2,120
    Location:
    South Texas, USA
    Not on WiFi here, but I know what you mean. I liked the OpenDNS app because it would let me know the status with its Green and Red color in the Notification systray.

    dja2k
     
  21. zakazak

    zakazak Registered Member

    Joined:
    Sep 20, 2010
    Posts:
    529
    True that. Well, I will either create my own little app to fix the problem or just live with my fw forcing dnscrypt communication.
     
  22. wolfrun

    wolfrun Registered Member

    Joined:
    Jul 26, 2009
    Posts:
    700
    Location:
    North America
    Trying out µBlock with FF in Sandboxie. Was using Palemoon but µBlock wouldn't work properly with it. Just might stick with FF for now as a lot of extension are not working with Palemoon since the updates.
     
  23. Security on my Windows 7 ultimate 32 bits desktop:
    1. INTERNET: Norton DNS > WFW 2-way > Chrome Sandbox > µBlock > MBAE
    2. DISABLED: risk-ware, 16bits, shell & scripts, user autoruns, desktop gadgets
    3. MITIGATE: ACL deny threatgates > SRP deny basic user > UAC block unsigned
     
    Last edited by a moderator: Feb 22, 2015
  24. bo elam

    bo elam Registered Member

    Joined:
    Jun 15, 2010
    Posts:
    6,144
    Location:
    Nicaragua
    Hey Wolf, if µBlock dont work out for you, I can tell you Adblock plus is working great along Firefox with NoScript under Sandboxie. You wont be bother by anything in any of the sites that you and I stream games from. You click the link, the game opens. No bother of any kind.:cool:

    Bo
     
  25. wolfrun

    wolfrun Registered Member

    Joined:
    Jul 26, 2009
    Posts:
    700
    Location:
    North America
    Right now Bo, µBlock is working well so far. Have tested it at the game sites and no problem what so ever, fast and low memory. Working well with NoScript also. I was using Adblock Latitude with Palemoon which is an offshoot of ABP especially for Palemoon. I just wanted to try something different with µBlock and so far so good.:cool: Also since the Palemoon update a lot of the original FF extensions don't work anymore....time to move on. If I run into problems with µBlock I can always revert back to ABP.
     
  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.